Security principles
- Real multi-tenant isolation
- Encryption in transit and at rest
- Rate limiting + throttling
- Full audit + secure logs
- Observability + health checks
- Zero-trust API access
Security
Security & Trust Center - Weryon Mapping Engine
Enterprise security. Multi-tenant isolation. Encryption. Audit. Full observability. The AI platform built for safety, compliance and scale.
Multi-tenant isolation
- Separate data
- Separate API keys
- Separate feeds
- Separate webhooks
- Separate AI processes
- No entity, feed or webhook can cross tenant boundaries.
Encryption
- Mandatory HTTPS for all endpoints
- Encryption at rest for sensitive data
- HMAC signatures for webhooks
- SHA-256 hashing for API keys
API security
- Rate limiting
- Adaptive throttling
- Token invalidation
- IP reputation checks
- Full audit
Feed security
- Access only via API Key
- Isolated directories per feed
- Unique URL per generation
- Gzip support
- Range requests support
- Full access audit
Webhook security
- HMAC signature
- Retry logic
- Anti-replay timestamp
- Minimized payload
- Full audit
Observability
- Health checks
- AI metrics
- Feed metrics
- Webhook metrics
- API metrics
- Secure logs
Compliance
- GDPR compliant
- Data minimization
- Right to access
- Right to delete
- Right to export
Security is the foundation of Weryon Mapping Engine.